08-30-2019 03:35 AM
Dear all
after configuring TLS in ESA (Destination control TLS preferred, Mail Policy-Default Policy Parameter TLS preferred). In order test it we send email and receive form different domains. It works as expected. But users complained that they were not able to send email to some domains. Actually they send email but other side not accept it. After checking TLS logs and message tracking i observed that email is sent from our ESA. but i don't understand why it didn't reach to destination. it is so urgent please help me to solve this problem.
08-30-2019 07:18 AM
08-31-2019 04:04 AM
Hi. dont you think if tls mismatch occurs then monitor tracking would show failed tls event? It shows it is successful.
09-01-2019 05:35 PM
09-02-2019 12:58 AM
Hi Pratham
all i see is
Message 1834733 to bob@test.com received remote SMTP response 'ok: Message 1054384 accepted' |
09-03-2019 04:33 AM - edited 09-03-2019 04:34 AM
I have this problem very often..nearly always a certificate problem.
check the destination domain with this site
https://de.ssl-tools.net/mailservers
maybe you need to install the certificate from the destination server.
You can get the certificate also from the site (screenshot 1.jpg )
https://de.ssl-tools.net/mailservers
Install the certificate on (cisco ESA)
/network/certificates-->Edit Settings --> Custom List (export List)--->insert the certificate (PEM format) and reinstall the list (screenshot 2.jpg)
09-03-2019 10:09 PM
Hi
We have mail.company.com certificate.But we have added Cisco ESA's default certificate. do you thing it would cause that issue?
I will test one more thing and i will turn you back with the result. thanks
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: